OpenText LiveLink 9.7.1 - Multiple Cross-Site Scripting Vulnerabilities

OpenText LiveLink 9.7.1 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/43420/info OpenText LiveLink is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these...

CollabNet Subversion Edge Log Parser - HTML Injection

source: https://www.securityfocus.com/bid/43378/info CollabNet Subversion Edge is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would run in the context of...

@Mail 6.1.9 - 'MailType' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43377/info @Mail is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary JavaScript code in the browser of an unsuspecting user in the context ...

Nagios XI 'users.php' Multiple Cross-Site Scripting Vulnerabilities

Nagios XI is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the...

Netautor Professional 5.5 - 'login2.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43290/info Netautor Professional is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary HTML and script code in the browser of an unsuspecting...

MantisBT < 1.2.3 Multiple HTML Injection Vulnerabilities

MantisBT is prone to multiple HTML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and a...

AContent 1.0 - Cross-Site Scripting HTML Injection

AContent 1.0 - Cross-Site Scripting HTML Injection source: https://www.securityfocus.com/bid/43238/info AContent is prone to multiple cross-site scripting vulnerabilities and an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically...

Mollify 1.6 - index.php Cross-Site Scripting

Mollify 1.6 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/43262/info Mollify is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary JavaScript code in the...

Mollify 1.6 - &#039;index.php&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/43262/info Mollify is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary JavaScript code in the browser of an unsuspecting user in the contex...

AContent 1.0 - Cross-Site Scripting / HTML Injection

source: https://www.securityfocus.com/bid/43238/info AContent is prone to multiple cross-site scripting vulnerabilities and an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow...

PaysiteReviewCMS 1.1 - search.php Cross-Site Scripting

PaysiteReviewCMS 1.1 - search.php Cross-Site Scripting source: https://www.securityfocus.com/bid/43213/info Mechanical Bunny Media PaysiteReviewCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these...

PaysiteReviewCMS - &#039;image.php&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/43213/info Mechanical Bunny Media PaysiteReviewCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser o...

ZenPhoto 1.3 - &#039;/zp-core/admin.php&#039; Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/43021/info Zenphoto is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...

ZenPhoto 1.3 - &#039;/zp-core/full-image.php?a&#039; SQL Injection

source: https://www.securityfocus.com/bid/43021/info Zenphoto is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...

MySource Matrix - &#039;char_map.php&#039; Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/43020/info MySource Matrix is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user i...

SyndeoCMS Local File Include, Cross Site Scripting, and HTML Injection Vulnerabilities

SyndeoCMS is prone to a local file-include, a cross-site scripting, and an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input. Exploiting the local file-include issue allows remote attackers to view or execute local files within the context of the...

Nagios XI < 2009R1.3 multiple vulnerabilities

Nagios XI is prone to multiple vulnerabilities. 1. Nagios XI is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

rainbowportal - Multiple Vulnerabilities

''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ ''' abysssec Inc Public Advisory 1 Advisory information Title : Rainbowportal Multiple Remote Vulnerabilities Version : Rainbow 2.0 Production/Stable 2.0.0.1881e VS 2005 | VS...

ArtGK CMS - Cross-Site Scripting HTML Injection

ArtGK CMS - Cross-Site Scripting HTML Injection source: https://www.securityfocus.com/bid/42923/info ArtGK CMS is prone to a cross-site scripting vulnerability and an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated...

Amiro.CMS 5.8.4.0 - Multiple HTML Injection Vulnerabilities

Amiro.CMS 5.8.4.0 - Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/42908/info Amiro.CMS is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful...